From owner-freebsd-questions@FreeBSD.ORG Mon Oct 4 20:43:23 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1356516A4CE for ; Mon, 4 Oct 2004 20:43:23 +0000 (GMT) Received: from musashi.fi.uba.ar (musashi.fi.uba.ar [157.92.49.7]) by mx1.FreeBSD.org (Postfix) with ESMTP id 42C4043D3F for ; Mon, 4 Oct 2004 20:43:21 +0000 (GMT) (envelope-from gkullak@fi.uba.ar) Received: from musashi.fi.uba.ar (localhost.localdomain [127.0.0.1]) by musashi.fi.uba.ar (8.12.10/8.12.10) with ESMTP id i94Iscq2017151 for ; Mon, 4 Oct 2004 15:54:38 -0300 Received: (from apache@localhost) by musashi.fi.uba.ar (8.12.10/8.12.10/Submit) id i94IscLc017149; Mon, 4 Oct 2004 15:54:38 -0300 Received: from 161.190.1.253 (SquirrelMail authenticated user gkullak); by webmail.fi.uba.ar with HTTP; Mon, 4 Oct 2004 15:54:38 -0300 (ART) Message-ID: <43473.161.190.1.253.1096916078.squirrel@161.190.1.253> Date: Mon, 4 Oct 2004 15:54:38 -0300 (ART) From: gkullak@fi.uba.ar To: freebsd-questions@freebsd.org User-Agent: SquirrelMail/1.4.3a-1 X-Mailer: SquirrelMail/1.4.3a-1 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal X-FIUBA-MailScanner-Information: Please contact the ISP for more information X-FIUBA-MailScanner: Found to be clean X-FIUBA-MailScanner-SpamCheck: no es spam (whitelisted), SpamAssassin (puntaje=-3.831, requerido 5, AWL 0.28, BAYES_00 -4.90, NO_REAL_NAME 0.16, RATWR20_MESSID 0.62) X-MailScanner-From: gkullak@fi.uba.ar Subject: IPNAT max static mapping hardcored? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 04 Oct 2004 20:43:23 -0000 Hi, I come from iptables over Red Hat 7.3 in my cable connection(512Kbps). This structure with 20 machines nated in my LAN. 3 machines are running Overnet, this may be that we must redirect 6 port (1 TCP and 1 UDP for each machine) for each Overnet machine. This work fine and transparent proxy in the same machine work fine too. Internet ---> x.x.x.x(public address) | RH 7.3 | 172.16.0.2----> LAN Now, I have been installed FreeBSD 4.10 with ipfilter in RH7.3 position instead, but when I start Overnet on FreeBSD and overnet in ONE machine of the LAN, the FreeBSD crash. What it mean crash? SSH is very slow to prompt for password, proxy transparent may be work, may be no. If a put proxy setting in my IE configuration, the thing work better. Anybody tell my that in one .h C library, the ipfilter program define a constant that fix the max static connection...this is really??? Actually, with ipnat -s, I see 780 mapping. Is this number really high? This do that I thing that ipfilter is designed for very small networks with very network load. What do you thing? I will try putting Red Hat again for test. Regards. -- Gustavo Ariel Kullak e-mail:gkullak@fi.uba.ar